Verifying an association between an application and a mobile device through a telecommunication network

ABSTRACT

A system for verifying an association between an application and a mobile computing device. The mobile computing device transmits a request to a service to verify the application, which has an application instance identifier. A mobile device identifier, used to establish a communication channel with the mobile computing device, is also conveyed to the service. The mobile computing device receives one or more telephone call setup messages directed to the mobile device identifier, each of which signal a voice call request, and provides an indication to the service of the receipt of the telephone call setup messages. In response to receiving the indication, the service establishes an association between the application instance identifier and the mobile device identifier.

CROSS-REFERENCE TO RELATED APPLICATION(S)

This application is a continuation of U.S. patent application Ser. No.14/423,984, filed on Feb. 25, 2015 and entitled “REDIRECTING CELLULARTELEPHONE COMMUNICATIONS THROUGH A DATA NETWORK,” which is a U.S.National Stage Entry of International Application No. PCT/IB2013/002338,filed on Aug. 26, 2013 and entitled “REDIRECTING CELLULAR TELEPHONECOMMUNICATIONS THROUGH A DATA NETWORK,” which is related to and claimsthe benefit of U.S. Provisional Application No. 61/693,316, filed onAug. 26, 2012 and entitled “APPARATUS, SYSTEM AND METHOD FOR FORWARDINGCOMMUNICATION IN NETWORK AND ITS PREVENTION”, and U.S. ProvisionalApplication No. 61/727,744, filed on Nov. 18, 2012 and entitled“FORWARDING SYSTEM AND METHOD AND DISCOVERY AND VERIFICATION OF MSISDNBY A MOBILE APP SYSTEM AND METHOD,” all of which are incorporated hereinby reference.

TECHNICAL FIELD

This description relates to mobile communications, and more particularlyto authenticating mobile devices and forwarding cellular communicationsusing data networks.

BACKGROUND

Systems for mobile telecommunications are typically deployed in acertain geographic area. Service is provided using cellularcommunication towers with antennas communicatively connected to acentral office. In the central office there are core components thatenable the different features of the network. For example, in GSM(Global System for Mobile Communications), one of these components is aHome Location Register (HLR). The HLR stores for each user a directorynumber also commonly known as Mobile Subscriber Integrated ServicesDigital Network-Number (MSISDN), or commonly referred to as a phonenumber. People call each other by dialing the MSISDN for thedestination. During an incoming call or message there is a component inthe mobile network that translates the dialed MSISDN to an InternationalMobile Subscriber Identity (IMSI) which is the identity that is usedwithin the mobile network to reach the subscriber.

Each subscriber is identified in and authenticated to the network usinga Subscriber Identity Module (SIM) card. This SIM card holds a secretnumber Ki (typically 128-bit), which is stored securely on the SIM cardand cannot be read from the card. The same Ki is stored for the user inthe network Authentication Center (AuC), which is usually deployedtogether with the HLR. The SIM card also stores the IMSI, though theIMSI is read from the card by the mobile phone. A mobile network canauthenticate a mobile phone asking for services from the network byverifying that the mobile phone has a SIM card that contains the secretKi for that user. The authentication protocol between the mobile phoneand the network typically involves sending a message in which the phoneidentifies itself, initially with its IMSI that the mobile phone readsfrom the SIM card. In response, the network challenges the mobile phonewith a challenge C. The mobile phone transfers this challenge C to theSIM card, which uses its secret Ki to compute a response F(C,Ki). F is acryptographically designed function such that from knowing (or evenchoosing C), and obtaining F(C,Ki) it is practically impossible to findthe secret Ki, hence for a given IMSI, only the authentic SIM card cancompute F(C,Ki) as only the authentic SIM has Ki. The AuthenticationCenter also stores the secret Ki for that IMSI and can thus computeF(C,Ki) and verify the response by the mobile phone, thereby verifyingthat the authentic SIM card is in the phone. Some variations of thisgeneral protocol can also be implemented. For example, the mobile phonecan authenticate the network to verify that the mobile phone is notbeing connected to a fake network.

The network can initiate authentication for every service it provides tothe mobile phone including for incoming services such as receiving acall or a Short Message Service (SMS). The network can also ask thephone to encrypt the conversation between the network and the phone,where the encryption keys are derived from C and Ki in a similar way tothe authentication and typically as part of the authentication process.For example, some of the bits of F(C,Ki) can be returned to the networkas a proof of holding Ki, and some of the bits can be kept by the phoneas encryption and/or integrity keys. The HLR also stores the last knownlocation for each user. Each cell tower is typically associated with aMobile Switching Center (MSC) that routes calls and handles neededmobility management to keep calls, data, SMS, and other mobile servicesworking even when users are moving between cell towers and even if thecell towers belong to different MSCs.

Each MSC has an associated Visitor Location Register (VLR). A VLR is anetwork component that keeps track of the cell location of each user inthe coverage area of the MSC and associated VLR. The VLR reports thelocation of the mobile phone to the HLR associated with the mobilephone. Depending on the network configuration, a VLR can update the HLRwhen a user first enters the coverage of that specific VLR, but notupdate for every cell change in that VLR. In other cases, more detailedreporting is carried between the VLR to the HLR. For instance, the VLRcan notify the HLR once a certain time-period has passed since receivingthe current location of a mobile device. Alternatively, the VLR canupdate the HLR of every instance when the user changes cell towers, orwith every location area change (e.g., where a location area is definedas one or more cells indicated as belonging to a location area. Eachcell can belong to one location area, and each location area can belongto one VLR).

In addition to voice services, cellular service providers have deployedother services such as the ability to send and receive text messages toand from other users, a service commonly referred to as SMS (shortmessage service).

A need often arises for users to travel with their mobile phone outsidethe coverage area of their home network, i.e., out of the coverage areaof their mobile service provider that provides the user with a mobilesubscription. To address such situations, mobile operators are typicallyconnected in a series of roaming agreements with other operators orroaming brokers to provide roaming services to their subscribers. Suchagreements allow users to obtain mobile service even when they areoutside of their home network, although such roaming services aretypically expensive relative to service within the user's home network.

Most signaling communication, as well as some of the data communication(such as SMS) is carried over a signaling network called SignalingSystem No. 7 (SS#7 or SS7). This network is used for communicationinside a provider's network, and operators that have roaming agreementsare typically also connected over SS7 networks. As networks aretransitioning to an all-IP network, the SS7 is being complemented andreplaced with other standards such as the Diameter protocol.

As telecommunication evolved, new types of communications also emerged,such as Voice over IP (VoIP), where users can receive and make phonecalls over the Internet. Applications that allow receiving and sendingshort messages also emerged. These services sometimes communicate over adata network, typically carrying data over IP (Internet Protocol). Asusers consume these services on various devices such as personalcomputers, laptop devices, tablet devices, handheld phones, PDAs and thelike, although such services generally are distinct from conventionalcellular communications and require use of an application on the deviceor accessed through a web page.

SUMMARY

In accordance with aspects described in this specification, users canretain their identity in the mobile world (i.e., their MSISDN) even whenusing an application. For example, it may be desired for users toreceive their incoming SMS through an application or software on one oftheir devices rather than on the user's mobile phone. Similarly, a usermay wish to receive incoming calls directed to their MSISDN through anapplication. Techniques can be implemented to discover and verify anMSISDN for use by an application and routing calls directed to theMSISDN over a data network rather than a conventional routing throughthe cellular network. Other aspects include corresponding apparatus,systems, and computer software, stored on a computer storage medium andexecutable on one or more computers.

In one general aspect, a method includes receiving a telephone callsetup message from a mobile device directed to a telephone numberassociated with a server, wherein the server is adapted for discovery ofa mobile device identifier for the mobile device and the telephone callsetup message is initiated by an application on the mobile device; andassociating the mobile device identifier with the application inresponse to receiving the telephone call setup message from the mobiledevice directed to the telephone number. Other aspects includecorresponding apparatus, systems, and computer software, stored on acomputer storage medium and executable on one or more computers.

Implementations can include one or more of the following features. Acode is sent to the mobile device using the mobile device identifier; acommunication is received from the mobile device based on the code,wherein the communication is sent by the application; and associatingthe communication with the telephone call setup message after verifyingthe communication is based on the code. The communication furtherincludes a unique identifier of an application instance on the mobiledevice, the method further comprising storing an association of theunique application instance identifier with the mobile deviceidentifier. A unique identifier of an application instance on the mobiledevice is associated with the mobile device identifier; and anadditional telephone call setup message to the mobile device isinitiated using the mobile device identifier. The additional telephonecall setup message includes a selected identifier, where the selectedidentifier is for use in verifying the association of the applicationinstance identifier with the mobile device identifier; and theassociation of the application instance identifier with the mobiledevice identifier is verified based on detecting the selected identifierin the additional telephone call setup message. A request is receivedfrom the application on the mobile device for the telephone number; andthe telephone number is provided in response to the request, wherein theapplication uses the telephone number to initiate the telephone callsetup message. The request includes a unique identifier of anapplication instance on the mobile device, and an association of theunique application instance identifier with the mobile device identifieris stored in response to receiving the telephone call setup messagedirected to the telephone number. A unique identifier of an applicationinstance on the mobile device is associated with the mobile deviceidentifier; an additional telephone call setup message to the mobiledevice is initiated using the mobile device identifier, wherein theadditional telephone call setup message includes a selected identifier,with the selected identifier for use in verifying the association of theapplication instance identifier with the mobile device identifier; andthe association of the application instance identifier with the mobiledevice identifier is verified based on detecting the selected identifierin the additional telephone call setup message. A user interface displayon the mobile device is disabled for a telephone call that results inthe telephone call setup message. The mobile device identifier is aninternational mobile station identity (IMSI). The mobile deviceidentifier comprises a mobile subscriber integrated services digitalnetwork number (MSISDN). The mobile device identifier is included in thetelephone call setup message as a caller ID header. Access to a serviceassociated with the application is authorized based, at least in part,on associating the mobile device identifier with the application. Atelephone call requested in the telephone call setup message isterminated before a voice connection is established.

In another general aspect, a method includes receiving a request toaccess a service to be provided for a mobile device; providing atelephone number associated with a server adapted for discovery of amobile device identifier associated with the mobile device requestingaccess to the service; receiving a telephone call setup message from themobile device directed to the telephone number; and associating themobile device identifier with the request for access to the service inresponse to receiving the telephone call setup message from the mobiledevice directed to the telephone number. Other aspects includecorresponding apparatus, systems, and computer software, stored on acomputer storage medium and executable on one or more computers.

Implementations can include one or more of the following features. Therequest to access a service on the mobile device is received from anapplication on the mobile device and includes a request to activate theapplication for use on the mobile device, the application has anassociated application instance identifier, and associating the mobiledevice identifier with the request for access to the service includesassociating the mobile device identifier with the application instanceidentifier. The method further includes initiating an additionaltelephone call setup message to the mobile device using the mobiledevice identifier, wherein the additional telephone call setup messageincludes a selected identifier, with the selected identifier for use inverifying the association of the application instance identifier withthe mobile device identifier; and verifying the association of theapplication instance identifier with the mobile device identifier basedon detecting the selected identifier in the additional telephone callsetup message. A user interface display on the mobile device is disabledfor a telephone call that results in the telephone call setup message.

In another general aspect, a computer storage medium is encoded with acomputer program, and the program includes instructions that whenexecuted by data processing apparatus cause the data processingapparatus to perform operations including initiating a telephone callsetup message directed to a telephone number associated with a server,wherein the server is adapted for discovery of a mobile deviceidentifier for a mobile device; receiving an incoming communication fromthe server in response to the telephone call setup message, wherein theincoming communication includes a code; and sending an outgoingcommunication to the server in response to the incoming communication,wherein the outgoing communication includes the code and an applicationinstance identifier for use in associating the mobile device identifierand the application instance identifier. Other aspects includecorresponding apparatus, systems, and methods.

Implementations can include one or more of the following features. Theoperations further include disabling a restriction on including a callerID in the telephone call setup message. The operations further includeterminating a telephone call requested in the telephone call setupmessage before a voice connection is established.

In another general aspect, a computer storage medium is encoded with acomputer program, and the program includes instructions that whenexecuted by data processing apparatus cause the data processingapparatus to perform operations including sending a request for atelephone number, wherein the request is sent to a server adapted fordiscovery of a mobile device identifier for a mobile device and therequest includes an application instance identifier; receiving aresponse to the request, wherein the response includes a telephonenumber; and initiating a telephone call setup message directed to thetelephone number for use in associating the mobile device identifier andthe application instance identifier, wherein the server is adapted fordiscovery of a mobile device identifier for a mobile device. Otheraspects include corresponding apparatus, systems, and methods.

Implementations can include one or more of the following features. Theoperations further include disabling a restriction on including a callerID in the telephone call setup message. The operations further includeterminating a telephone call requested in the telephone call setupmessage before a voice connection is established.

In another general aspect, a computer storage medium encoded with acomputer program, the program comprising instructions that when executedby data processing apparatus cause the data processing apparatus toperform operations including disabling a user interface display on themobile device for a telephone call; initiating a telephone call setupmessage after disabling the user interface display, wherein thetelephone call setup message is directed to a telephone numberassociated with a server adapted for discovery of a mobile deviceidentifier for a mobile device; and sending an outgoing communication tothe server, wherein the outgoing communication includes an applicationinstance identifier for use in associating the mobile device identifierand the application instance identifier. Other aspects includecorresponding apparatus, systems, and methods.

In another general aspect, a system includes a mobile device having anapplication adapted to initiate a telephone call setup message to atelephone number and one or more servers. The one or more servers areadapted to identify a mobile device identifier based on the telephonecall setup message; receive an application instance identifier for theapplication sent by the application; and associate the mobile deviceidentifier with application instance identifier. Other aspects includecorresponding apparatus, methods, and computer software, stored on acomputer storage medium and executable on one or more computers.

Implementations can include one or more of the following features. Theone or more servers are further adapted to send a message including acode to the mobile device using the mobile device identifier; receive acommunication from the mobile device including the code and theapplication instance identifier, wherein the communication is sent bythe application on the mobile device; and associate the communicationwith the telephone call setup message based on the code, wherein themobile device identifier is associated with application instanceidentifier based on the association between the communication with thetelephone call setup message. The application is adapted to send amessage to the one or more servers to request the telephone number andprovide the application instance identifier, and the one or more serversare adapted associate the mobile device identifier with applicationinstance identifier based on the telephone call setup message. The oneor more servers are further adapted to initiate an additional telephonecall setup message to the mobile device using the mobile deviceidentifier, wherein the additional telephone call setup message includesa selected identifier, with the selected identifier for use in verifyingthe association of the application instance identifier with the mobiledevice identifier; and verify the association of the applicationinstance identifier with the mobile device identifier based on detectingthe selected identifier in the additional telephone call setup message.At least one of mobile device or the one or more servers are furtheradapted to terminate a telephone call requested in the telephone callsetup message before a voice connection is established.

In another general aspect, a method includes receiving a request toverify an application on a mobile device, wherein the application has anassociated application instance identifier; obtaining a mobile deviceidentifier used to communicate with the mobile device; initiating one ormore telephone call setup messages directed to the mobile device usingthe mobile device identifier, wherein the one or more telephone callsetup messages are initiated by a server for use in verifying anassociation of the application instance identifier with the mobiledevice identifier; and associating the application instance identifierwith the mobile device identifier based on detecting the one or moretelephone call setup messages. Other aspects include correspondingapparatus, systems, and computer software, stored on a computer storagemedium and executable on one or more computers.

Implementations can include one or more of the following features. Theapplication detects a sequence of telephone call setup messages andreports the sequence of the telephone call setup messages to a server,with the association of the application instance identifier with themobile device identifier is based on the reported sequence of thetelephone call setup messages. At least one of the telephone call setupmessages includes a selected identifier, with the selected identifierdetermined by a server for use in verifying an association of theapplication instance identifier with the mobile device identifier, andthe association of the application instance identifier with the mobiledevice identifier is based on detecting the selected identifier in atleast one of the telephone call setup messages. The application reportsto a server through a data network based on the selected identifier. Theselected identifier is included in the telephone call setup message as acaller ID header. The method further includes requesting call forwardingfor the mobile device to a selected destination; and verifying theassociation of the application instance identifier with the mobiledevice identifier based on forwarding of the one or more telephone callsetup messages to the selected destination. The call forwarding isinitiated by a server using the mobile device identifier. The callforwarding is initiated by an application on the mobile device. Themobile device identifier comprises an international mobile stationidentity (IMSI). The mobile device identifier comprises a mobilesubscriber integrated services digital network number (MSISDN). Theassociation of the application instance identifier with the mobiledevice identifier is verified, and the verification is based at least inpart on the selected identifier included in the one or more telephonecall setup messages. A user notification on the mobile device oftelephone calls corresponding to the one or more telephone call setupmessages is disabled. A service is provided to the application on themobile device in response to verifying the association of theapplication instance identifier with the mobile device identifier.

In another general aspect, a computer storage medium encoded with acomputer program, the program comprising instructions that when executedby data processing apparatus on a mobile device cause the dataprocessing apparatus to perform operations including transmitting anapplication instance identifier to a server system; detecting one ormore one or more telephone call setup messages directed to the mobiledevice using a mobile device identifier, wherein the one or moretelephone call setup messages are initiated by the server system for usein verifying an association of the application instance identifier withthe mobile device identifier; and sending one or more reports to theserver system over a data network including information obtained fromthe detection of the one or more telephone call setup messages, whereinthe one or more reports include the application instance identifier.Other aspects include corresponding apparatus, systems, and methods.

Implementations can include one or more of the following features. Theone or more telephone call setup messages include a sequence oftelephone call setup messages the one or more reports includeinformation regarding the sequence of the telephone call setup messages.At least one of the one or more telephone call setup messages includes aselected identifier, with the selected identifier determined by a serverfor use in verifying an association of the application instanceidentifier with the mobile device identifier, and at least one of theone or more reports includes information regarding the selectedidentifier. The operations further include disabling a user notificationon the mobile device of a telephone call corresponding to the one ormore telephone call setup messages.

In another general aspect, a computer storage medium encoded with acomputer program, the program comprising instructions that when executedby data processing apparatus on a mobile device cause the dataprocessing apparatus to perform operations including transmitting anapplication instance identifier to a server system; requesting callforwarding for the mobile device to a selected destination; andcommunicating with the server system to initiate one or more telephonecall setup messages to the mobile device using a mobile deviceidentifier, wherein the one or more telephone call setup messages areinitiated by a server system for use in verifying an association of theapplication instance identifier with the mobile device identifier. Otheraspects include corresponding apparatus, systems, and methods. Theoperations further include canceling call forwarding for the mobiledevice. The operations further include receiving an identification ofthe selected destination from the server system. Communicating with theserver system to initiate one or more telephone call setup messagesincludes sending a message to the server system indicating that callforwarding to the selected destination is initiated. The operationsfurther include disabling a user notification on the mobile device of atelephone call corresponding to the one or more telephone call setupmessages. Other aspects include corresponding apparatus, systems, andmethods.

In another general aspect, a system includes a mobile device having aninstalled application with a corresponding application instanceidentifier and one or more servers. The one or more servers are adaptedto receive a mobile device identifier used communicate with the mobiledevice; receive the application instance identifier; associate themobile device identifier with the application instance identifier;initiate one or more telephone call setup messages directed to themobile device using the mobile device identifier; and verify theassociation of the mobile device identifier with the applicationinstance identifier based on a detection of the one or more call setupmessages. Other aspects include corresponding apparatus, methods, andcomputer software, stored on a computer storage medium and executable onone or more computers.

Implementations can include one or more of the following features. Theapplication is adapted to detect a sequence of telephone call setupmessages and report the sequence of the telephone call setup messages tothe one or more servers, and the one or more servers are adapted toverify the mobile device identifier with the application instanceidentifier based on the reported sequence of the telephone call setupmessages. At least one of the telephone call setup messages includes aselected identifier, with the selected identifier determined by the oneor more servers, and the association of the application instanceidentifier with the mobile device identifier is based on detecting theselected identifier in at least one of the telephone call setupmessages. At least one of the mobile device or the one more servers areadapted to activate call forwarding for the mobile device to a selecteddestination, and the association of the mobile device identifier withthe application instance identifier is verified based on receiving aforwarded telephone call setup message at the selected destination.

In another general aspect, a method includes registering a cellulartelephone identifier with a visitor location register associated with abridge mobile switching center adapted to receive communication througha cellular backbone network and route communications over apacket-switched network; determining that cellular communications usingthe cellular telephone identifier are disabled; notifying a homelocation register associated with the cellular telephone that thecellular telephone is roaming in a network served by the visitorlocation register; receiving a communication directed to the cellulartelephone at the bridge mobile switching center; and routing thereceived communication to the cellular telephone. Other aspects includecorresponding apparatus, systems, and computer software, stored on acomputer storage medium and executable on one or more computers.

Implementations can include one or more of the following features. Thereceived communication is routed to the cellular telephone over apacket-switched network. The cellular telephone is registered with thevisitor location register using a wireless access point and the InternetProtocol network. The received communication comprises one of a voicecall, a text message, an image message, or a video call. The receivedcommunication is redirected to a different destination upon detecting adeteriorating wireless packet-switched connection. Disabling cellularcommunications and notifying the home location register that thecellular telephone identifier is roaming in a network served by thevisitor location register are performed in response to detectingadequate connectivity through the wireless access point to support voiceover Internet Protocol communications. Disabling cellular communicationsand notifying the home location register that the cellular telephone isroaming in a network served by the visitor location register areperformed in response to satisfying one or more parameters. The receivedcommunication is directed to a number associated with a first subscriberidentity module and the received call is routed to a number associatedwith a second subscriber identity module installed in a cellulartelephone. The visitor location register provides a roaming number tothe home location register, with the roaming number selected so as toavoid toll charges. A call log on the cellular telephone is synchronizedbetween calls connected using a cellular connection and calls connectedusing the Internet Protocol network.

In another general aspect, a computer storage medium encoded with acomputer program, the program comprising instructions that when executedby data processing apparatus on a mobile device cause the dataprocessing apparatus to perform operations including sending a requestto a server over a packet-switched network for telephone servicesassociated with a cellular telephone identifier, wherein the server isadapted to register the cellular telephone identifier with a visitorlocation register associated with a bridge mobile switching centeradapted to receive communication through a cellular backbone network androute communications over a packet-switched network and the visitorlocation register is adapted to notify a home location registerassociated with the cellular telephone that the cellular telephone isroaming in a network served by the visitor location register; disablingcellular communications using the cellular telephone identifier on themobile device; and receiving a communication directed to the cellulartelephone identifier from the bridge mobile switching center over apacket-switched network. Other aspects include corresponding apparatus,systems, and methods.

Implementations can include the following feature. The request includesan application instance identifier associated with the cellulartelephone identifier before sending the request.

In another general aspect, a system includes a server adapted tocommunicate with an application on a mobile device and to establishvoice over Internet protocol communications with the mobile device usingthe application; a bridge mobile switching center adapted to receivecommunication through a cellular backbone network and routecommunications over a packet-switched network; and a visitor locationregister associated with the bridge mobile switching center, wherein thevisitor location register is adapted to notify a home location registerassociated with a cellular telephone identifier for the mobile devicethat the mobile device with the cellular telephone identifier is roamingin a network served by the visitor location register. Other aspectsinclude corresponding apparatus, methods, and computer software, storedon a computer storage medium and executable on one or more computers.

Implementations can include one or more of the following features. Theapplication on the mobile device is adapted to disable cellularcommunications for the cellular telephone identifier. The visitorlocation register is further adapted to confirm that the cellulartelephone identifier is not registered in another cellular networkbefore notifying the home location register that the mobile device withthe cellular telephone identifier is roaming in the network served bythe visitor location register.

In another general aspect, a method includes detecting use of a visitorlocation register to forward calls to a mobile device using apacket-data network; and blocking calls to the mobile device from beingforwarded to the visitor location register based on the detected use.Other aspects include corresponding apparatus, systems, and computersoftware, stored on a computer storage medium and executable on one ormore computers.

The details of one or more implementations are set forth in theaccompanying drawings and the description below. Other features will beapparent from the description and drawings, and from the claims.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 illustrates a communication system that allows a mobile device tomaintain a cellular identity and access services associated with thecellular identity using a packet-switched data network connection.

FIG. 2 is a flow diagram of a process for routing communicationsdirected to a cellular identity of a mobile device to an application onthe mobile device.

FIG. 3 is a flow diagram of a process for blocking communicationsdirected to a cellular identity of a mobile device from being routed toan application on the mobile device.

FIG. 4 depicts a discovery and verification system for discovering andverifying a cellular identity.

FIG. 5 depicts a block diagram of components on a mobile device that canbe used in the systems of FIGS. 1 and 4.

FIG. 6 is a flow diagram of another process for discovery of a mobileidentity and an association of the mobile identity with an applicationinstance identifier for an application on the mobile device.

FIG. 7 is a flow diagram of another process for discovery of a mobileidentity and an association of the mobile identity with an applicationinstance identifier for an application on the mobile device.

FIG. 8 is a flow diagram of another process for discovery of a mobileidentity and an association of the mobile identity with an applicationinstance identifier for an application on the mobile device.

FIG. 9 is a flow diagram of a process 900 for verification of a mobileidentity and an association of the mobile identity with an applicationinstance identifier for an application on the mobile device.

FIG. 10 is a flow diagram of an alternative process 1000 forverification of a mobile identity and an association of the mobileidentity with an application instance identifier for an application onthe mobile device.

Like reference symbols in the various drawings indicate like elements.

DETAILED DESCRIPTION

In accordance with aspects described in this specification, users canretain their identity in the mobile world (i.e., their MSISDN) even whenusing an application to conduct mobile communications (e.g., voicecalls, short message service (SMS) or other text messages, video calls,or image messages). For example, it may be desired for users to receivetheir incoming SMS through an application or software on one of theirdevices rather than on the user's mobile phone. Similarly, a user maywish to receive incoming calls directed to their MSISDN through anapplication that communicates over a WiFi access point and a packet-datanetwork.

Routing Communications Directed to a Cellular Identity Through aPacket-Switched Network

To facilitate such capabilities, an alternative service provider canimplement a system in which an application on a mobile device registerswith a server that is capable of sending and receiving communications toand from the mobile device over a packet-switched network, at least whenthe mobile device has adequate access to a Wi-Fi or other dataconnection. The server can connect with a cellular network through anetwork component that receives communications over a conventionalcellular network and forwards the communications over the Internet. Thenetwork component can communicate with the cellular network as a typicalmobile switching center (MSC) and associated visitor location register(VLR), while communicating over the Internet using Internet Protocol,for example. To receive incoming communications directed to the mobiledevice subscriber's phone number, this network component can notify thesubscriber's home location register (HLR) that the subscriber's mobiledevice (with the subscriber's subscriber identity module (SIM)) isregistered within a cellular network served by the network component,even when the mobile device is actually connected to the networkcomponent through an Internet connection and may be physically locatedvirtually anywhere that Internet access is available. This networkcomponent can be viewed as a novel Visitor Location Register (nVLR) andcan be combined with the server that provides the service, although thevarious functions may also be distributed across multiple components.

In an illustrative embodiment, a user notifies an alternative serviceprovider (ASP) that the user is interested in receiving cellularcommunications directed to the user's MSISDN through the ASP'sapplication and supplies the ASP with the user's MSISDN (which isregistered through the user's home service provider). For securitypurposes, the ASP can verify that the user is actually the holder of theMSISDN. This verification can be performed, for example, by using theASP's application to cause the user's phone to dial call a certainnumber associated with the ASP and identifying the caller ID for theincoming call, calling the user and asking the user to dial some DTMFdigits to authenticate that the MSISDN belongs to the user and that theuser is interested in the service, sending an SMS to the user's MSISDNand verifying that the user received the SMS and is interested in theservice, having the user's phone send an SMS to a service number toverify the MSISDN, and so on.

The ASP can connect to the SS7 network through a cellular operator thatis willing to provide access for use by the ASP and that has a roamingagreement with the home cellular operator of the subscriber. The ASP,the cellular operator, or some other entity can operate a novel VLRmentioned above and further described below.

Provision of the ASP's service may typically be limited to situations inwhich the mobile device is not already operating in another cellularnetwork (including the user's home network) to avoid conflictingcellular registrations. Thus, it may be desirable to confirm that theuser's mobile device's SIM is not already actively registered in anothercellular network before informing the HLR that the mobile device isroaming in an area served by the novel VLR. For example, once forwardingfor a specific MSISDN is requested (e.g., through an application on theuser's mobile device), the ASP can obtain the user's IMSI by issuing aSend-Routing-Info-For-Short-Message (referred to sometimes as SRI4SM) tothe HLR of the user. This message is conventionally used to find theIMSI and VLR associated with a particular MSISDN for the purpose ofdelivering short messages to a subscriber. If the SIM is online andregistered, the HLR will typically respond with the SIM's IMSI bysending an Ack(IMSI,VLR) message, together with the VLR SS7-address thatis currently serving the SIM. If the SIM is offline, i.e., it is not ina mobile phone which is active and registered, the HLR will typicallysend, in response to the SRI4SM, a Reject message or a messageindicating the user is not available to receive SMS. In this manner, theASP can limit its service to cases where the SIM is not active byquerying the HLR and continuing only if the user is not active. Othertechniques for verifying that the SIM is not currently active andregistered can also be used.

The nVLR can then notify the subscriber's HLR that the SIM is roaming inits network by providing the HLR with the IMSI of the user in an UpdateLocation Message—UL(IMSI). In other words, the nVLR can register as theVLR for this subscriber's IMSI through the roaming agreement between thehome cellular operator and the cellular operator that provides access tothe ASP. The HLR can acknowledge this request by sending an InsertSubscriber Data Message (ISD), and the nVLR can also requestauthentication vectors (containing C, and F(C,Ki)) for authenticatingthe SIM by sending a Send Authentication Info (SAI) message.

Thereafter, when a Short Message Service Center (SMSC) sends an SMSmessage directed to the user's MSISDN, the SMSC interrogates the HLR,which returns the nVLR SS7 address. Using this address, the SMSCdelivers the SMS message to the nVLR. The nVLR can then forward themessage to the application associated with the user's MSISDN ortranslate the identity to another MSISDN or IMSI and forward the messagedirectly to the subscriber through the application or, if the user hasopted to have messages forwarded to an alternative SIM, through anotherSMSC to a device with the alternative SIM. The nVLR can return a successor failure to the SMSC sending the message based on if the message issuccessfully delivered. Alternatively, the nVLR can answer a fixedanswer such as success on all messages it receives for subscribers. Astypically there is no extra charge for incoming SMS messages even whileroaming, there is no extra charge for the user for the incoming SMSmessage.

In this manner, the nVLR causes the user's SIM and/or correspondingmobile device associated with the MSISDN to appear towards its HLR asroaming in the network of the cellular operator that supports the nVLR,while the mobile device and/or SIM may actually be located in anotherterritory. As operators commonly send special SMS messages to userswhile roaming, these messages can cause confusion for such a user thatis either not roaming in another territory or is roaming in a territorydifferent than the territory identified in the HLR. In someimplementations, the ASP can discard these SMS messages to avoidconfusion for the user.

The nVLR can also notify the home HLR of a mobile station roaming numberfor the user's cellular subscription, forwarding all calls to theASP-determined number. This number can represent a gateway or bridgemobile switching center, which translate incoming calls to Voice over IPinstance. The MSRN can be selected to be in the territory of the homecellular operator or another territory with no or relatively low roamingrates to reduce costs for the user (e.g., to avoid long distance orinternational toll charges).

In some circumstances, an HLR can notify a VLR, and similarly the nVLR,to cancel the user's registration in the VLR. If such a cancellationoccurs, the nVLR can repeat the roaming notification process andregister the user again. If the user activates the SIM in a mobilephone, which registers with a different cellular network, the home HLRtypically notifies the old VLR. Thus, the home HLR may notify the nVLRthat the user is no longer registered with the nVLR. In cases where theHLR does not notify the nVLR, the nVLR can detect that the useractivated the SIM in another network by periodically interrogating thehome HLR by sending a Send Routing Info for Short Message; and if theHLR returns a message indicating that the serving VLR is different thanthe nVLR address, the nVLR can determine that the has user activated theSIM in a cellular network. In such a case, the nVLR can release the MSRN(e.g., for assignment to other mobile devices). Alternatively or inaddition, the nVLR can notify an application installed on the user'smobile device through a server that communicates with the application.

The nVLR can also be used to send SMS messages for the user. Forexample, a message to be sent can be provided to the nVLR through aserver that receives outgoing messages from an application installed onthe mobile device. The nVLR can then contact the home SMSC of the user,and send the SMS message to the SMSC a originating from the user's IMSI.Delivery status reports can be sent back to the server and forwarded tothe application on the mobile device. In addition, the CAMEL interfacecan be used to interrogate the home operator on different services thatneed to be provided for the users. Other techniques for interrogation ofthe home cellular operator with respect to a user's IMSI can also beused, and other services can be provided for the MSISDN and/or IMSI.

FIG. 1 illustrates a communication system 100 that allows a mobiledevice to maintain a cellular identity and access services associatedwith the cellular identity using a packet-switched data networkconnection. The system 100 includes a mobile device 105 that includesdual capabilities for communicating over a cellular radio network andover a wireless local area network (WLAN). When communicating over aWLAN, the mobile device 105 communicates over a wireless interface 110with a wireless access point 115 that is connected to a packet-switchednetwork 120, such as the Internet. The mobile device 105 includes aninstalled application 125 that communicates through the wireless accesspoint 115 and the packet-switched network 120 with an application server130 that provides packet-switched communication services to the mobiledevice 105 through the application 125. For example, the applicationserver 130 can provide voice over Internet protocol (VoIP) services,text messaging, video communication, and image messaging services to theapplication 125. Although the application 125 is described as beinginstalled on the mobile device 105, in some implementations, some ormost of the application functionality can reside on a server with morelimited or minimal functionality defined by instructions stored morepermanently in nonvolatile memory on the mobile device 105. Instructionscan be retrieved as necessary for execution on the mobile device 105and/or instructions can be executed on the application server 130.Moreover, in some implementations, the mobile device 105 may simplystore a pointer to the application server and an application instanceidentifier used to differentiate use of the application functionalitystored on the application server 130 by the mobile device 105 from useof the application functionality by other mobile devices. Theapplication instance identifier can be encrypted to prevent tampering orotherwise maintain security. In other implementations, all of thefunctionality of the application 125 can be stored on the applicationserver 130. The user of mobile device can activate and deactivate theservice, or change the service configuration through a web interfacewith the server, or by other remote interaction as such SMS commands,Interactive Voice Response (IVR), etc.

The mobile device 105 further includes a subscriber identity module(SIM) 135 that enables the mobile device 105 to access cellular servicesover a cellular radio network. The SIM 135 includes a subscription witha home cellular network that stores information about the SIM 135 andservices available under the subscription in a home location register(HLR) 140. Among other things, the SIM 135 and the HLR 140 store uniqueidentification information for the SIM 135 including an IMSI and anMSISDN.

In the system 100, the application 125 and the application server 130enable the mobile device 105 to associate the unique identifier for theSIM 135 and access services provided through the home cellular networkwhile the mobile device is not connected to a cellular network or whenthe mobile device has a different SIM installed by associating a uniqueidentifier for the particular application instance installed on themobile device 105 with the SIM identity (e.g., the IMSI and MSISDN). Inparticular, the application server 130 can communicate with the HLR 140through a bridge mobile switching center (MSC) 145 and associated VLR150 (which together correspond to the nVLR described above). Theapplication server 130 can communicate with the bridge MSC 145 and VLR150 over a packet-switched network 120, or the application server 130can be co-located or even incorporated as a component of the bridge MSC145 or the VLR 150. The bridge MSC 145 and VLR 150 communicate with theHLR 140 over a cellular backbone, such as SS7 network 155. Theapplication 125 or the application server 130 can request access toservices supported by the user's home cellular network and the HLR 140automatically (e.g., according the certain criteria) or in response to auser interaction with the application 125. In response, the applicationserver 130 can contact the VLR 150 to cause the VLR 150 to send aregistration message notifying the HLR 140 that the mobile device 105with the associated SIM 135 is roaming in the cellular network served bythe bridge MSC 145 and VLR 150. In some cases, before notifying the HLR140 that the mobile device is roaming, communications with a cellularradio access network using the SIM 135 are disabled either by theapplication 125 or manually by a user. For example, the SIM 135 can bedisabled or removed from the mobile device 105 or the cellular radio forthe mobile device can be turned off, e.g., by putting the phone inAirplane mode with WiFi. Such disabling of cellular communications usingthe SIM 135 can avoid conflicting registrations between the VLR 150 andanother VLR serving an area in which the mobile device 105 is currentlylocated. In some implementations, the VLR 150 can query the HLR 140 toconfirm that the SIM 135 is not registered in another cellular network.

When the VLR 150 sends the registration notification to the HLR 140, theVLR 150 can provide an MSRN. The VLR 150 can also request subscriptioninformation for the SIM 135, e.g., requesting an identification ofservices to which the user subscribes.

After the registration is complete, if a communication (e.g., a call orSMS message) directed to the mobile device (e.g., using the MSISDN forthe SIM 135) is initiated through a telephone network 160, the HLR 140is queried in a conventional manner and returns an MSRN obtained fromthe VLR 150 and associated with the bridge MSC 145. The communication isthus routed to the bridge MSC 145, which in turn contacts theapplication server 130 to route the communication to the application 125in the mobile device 105. In some implementations, the application 125can operate to provide a user interface experience similar or identicalto an incoming communication received over a cellular radio network. Inthe case of a message (e.g., SMS), the bridge MSC 145 can simply sendthe message to the application server for delivery to the application125. In the case of a call, the bridge MSC 145 operates to connect thecall received over SS7 or other cellular backbone network 155 to an IPcall (e.g., VoIP) that the application server 130 establishes betweenthe application 125 and the bridge MSC 145.

In some implementations, the SIM 135 for the mobile device 105 can bereplaced with an alternative SIM 136 associated with a different homecellular network. The application 125 and the application server 130 canredirect communications that are directed to the MSISDN associated withthe SIM 135 to the mobile device 105 with the alternative SIM 136. Forexample, the application server 130 can store an association of theidentity for the SIM 135 with the alternative SIM 136. In thissituation, instead of routing incoming communications received at thebridge MSC 145 to the application 105 on the mobile device 105, theapplication server 130 can route the communication to a SessionInitiation Protocol (SIP) gateway 165 (e.g., by sending a messagereceive via the bridge MSC 145 to the SIP gateway 165 or establishing aVoIP connection between the bridge MSC 145 and the SIP gateway 165)associated with a visited MSC 170 currently serving the mobile station105 with the alternative SIM 136. The SIP gateway 165 and/or visited MSC170 can be identified by querying an HLR associated with the SIM 136 oran incoming call can otherwise be routed to the MSISDN associated withSIM 136. The communication can thus be routed to the mobile device 105through a base station 175 serving the mobile device 105. By routingcommunications to the mobile device 105 using an alternative SIM 136, auser of the mobile device can receive communications directed to theuser's normal telephone number, for example, while roaminginternationally, which can enable the user to avoid high internationalroaming charges.

FIG. 2 is a flow diagram of a process 200 for routing communicationsdirected to a cellular identity of a mobile device to an application onthe mobile device. A request for telephone services associated with acellular telephone identifier is sent at 205 from the application to aserver using a wireless access point connected to a packet-switched orInternet protocol network. The request can be for such services to beprovided to the mobile device through the application using a WLANconnection rather than through a cellular radio access network. Therequest can include a unique application instance identifier for theapplication installed on the mobile device, which can have an existingassociation with the cellular identity of the mobile device (e.g., theMSISDN or IMSI). The request can be initiated, for example, in responseto detecting adequate connectivity through a wireless access point tosupport voice over Internet Protocol communications. Alternatively, orin addition, the request can be initiated in response to satisfying oneor more parameters. For example, the parameters can relate to therelative quality of cellular and WLAN connections (e.g., to give bestquality service such as when there is marginal cellular service);settings allowing user to choose to receive calls based on the qualityof the connection; automatically detecting bad cellular reception (e.g.,based on received signal strength indicator (RSSI), bit error rate,dropped calls, low codec quality, etc.); location (e.g., to reduce costswhen roaming); proximity to a home or office; based on access to acertain WiFi network; or time of day. In response to the request, thecellular telephone identifier is registered with a visitor locationregister associated with a bridge MSC adapted to receive communicationthrough a cellular backbone network and route communications over apacket-switched network at 210. Cellular communications using thecellular telephone identifier are disabled at 215, either before orafter the registration with the VLR. Such disabling can be performedautomatically by the application or through a manual operation by auser. A confirmation that the cellular telephone identifier is notregistered in another cellular network is performed at 220. Theconfirmation can be performed by the visitor location register, forexample.

A home location register associated with the cellular telephone isnotified that the cellular telephone is roaming in a network served bythe visitor location register at 225. This notification can be made eventhough the cellular telephone may actually be in a different locationand is not actually using cellular communication features due todisabling of cellular communications. The VLR can provide a MSRN that isselected so as to avoid or reduce toll charges. After the cellulartelephone is registered with the VLR at the HLR, a communicationdirected to the cellular telephone is received at the bridge mobileswitching center at 230. The communication can be, for example, a voicecall, a text message, an image message, or a video call. The receivedcommunication is routed to the cellular telephone over a packet-switchednetwork at 235. The communication can be routed to an application on thecellular telephone. Alternatively, the communication can be routed to anumber associated with an alternative SIM temporarily installed in thecellular telephone. The communication directed to the cellular telephoneidentifier is received from the bridge mobile switching center over apacket-switched network through an application on the cellular telephoneor through a cellular connection with the alternative SIM at 240.Following receipt of the communication, a call log or a message recordcan be synchronized with calls or messages received using a cellularconnection.

Blocking Routing of Communications Through a Packet-Switched Network

In some cases, a home cellular operator may wish to prevent forwardingcommunications to a third party and may wish to prevent this kind ofundesired forwarding. In the following embodiments, the term “blockcommunication” means either preventing a certain message from passingthrough, or sending a message that interferes with the normalcommunication such as sending a cancel registration to the nVLR for theIMSI. The following embodiments can be used alone or in any suitablecombination. A home operator may discover undesired forwarding byidentifying the nVLR as an undesired VLR for roaming, and comparing theVLR reported to the HLR with the SS7 address of the nVLR. The homeoperator may block all network traffic to the operator that supports thenVLR to stop communication with the nVLR, or block some or all of thetraffic going to the nVLR. For example, the operator can by default notallow roaming to the operator, and require users to specifically requestauthorization for roaming in the operator's network. Alternatively, thehome operator may compare the time that passed since the userdisconnected from one network to the time the user is registered withthe nVLR and, if this time difference is below a threshold, disrupt thecommunication. In some embodiments the threshold may be affected by thedistance between the territory of a network from which the userdisconnected to the territory of the nVLR. In another embodiment, thehome operator may block communication of the pattern of events createdby the nVLR, such as a send routing info for short message followed byregistration of the user in a territory different than the previousterritory. In another embodiment, the home operator may blockcommunication in case the MSRN provided by the nVLR is not in thecountry or territory of the operator that supports the nVLR. In anotherembodiment, the home operator can hide the IMSI of the user by providingwithin a Send-Routing-Info-for-Short-Message an IMSI number differentfrom the IMSI number associated with the user's SIM, thus not allowingthe ASP to discover the IMSI of the subscriber as stored in the SIMcard. In another embodiment, the home operator can report a VLR addressin the response for a send routing info for short message service, whichis different from the VLR currently serving the user and have theincoming message delivered to this VLR instead of the serving VLR. Then,the operator can deliver the SMS to the subscriber to the serving VLR.In some embodiments the report VLR can be reported even if the user isnot under service at all, and the message can be delivered to the useronce he is active online again. In such an embodiment, the nVLR mightconclude that the subscriber activated his SIM in a mobile network andtherefore deregister the subscriber from the nVLR. In anotherembodiment, the home operator can include an application on the SIM ofthe user, to which the home operator sends a message. If the message isnot acknowledged by the application to the home operator, then the homeoperator can deregister that IMSI from its serving VLR, or otherwisedisrupt the communication with the VLR. The message sent to theapplication as well as the acknowledgement can be cryptographicallyprotected to avoid impersonation by entities other than the SIM. In suchan embodiment, as the SIM is not online, the application would notreceive a message and therefore the nVLR which is acting as the VLR forthat IMSI would deregister the user or its communication would bedisrupted.

FIG. 3 is a flow diagram of a process 300 for blocking communicationsdirected to a cellular identity of a mobile device from being routed toan application on the mobile device. Use of a visitor location registerto forward calls to a mobile device using a packet-data network isdetected at 305. Calls to the mobile device are blocked from beingforwarded to the visitor location register based on the detected use at310.

Discovery and Verification of Cellular Identity

In some implementations, an ASP may desire to determine the MSISDN orother cellular identity of a registered phone using a process thatavoids relying on a user providing such information. Such a process caninclude a discovery phase, in which the ASP learns of the user'spossible MSISDN (i.e., a “discovered number”), and a verification phasein which the ASP verifies that the user has access to the MSISDN orother cellular identity obtained during the discovery phase.

In an illustrative embodiment of the discovery phase, the nVLR sends aphone number associated with a first gateway interface of the nVLR tothe mobile application. The mobile application then initiates anoutgoing call to the phone number. When the call reaches the nVLR, thenVLR can discover the MSISDN of the registered phone from the calleridentification (caller ID) information for the incoming call. The mobileapplication can hide on the user interface the fact the phone is dialingto avoid confusing the user. The nVLR can further configure the firstgateway interface to reject the call immediately once received, thusoccupying the user's cellular phone radio for only a short amount oftime. In some cases, the user's account can be configured to not send acaller ID, which would prevent the nVLR from receiving the user'snumber. To handle such a situation, the mobile application can instructthe phone to ask the network to allow caller ID just for this call byadding the prefix *31# to the phone. For example, if the phone numberassociated with the first gateway interface is +12021234567 then themobile application can instruct the phone to dial *31#+12021234567.Alternatively, the application can enable Caller ID presentation priorto dialing the phone number. The application can also check thecallerID-presentation status on the subscription of the user in thenetwork prior to enabling caller ID, and if callerID presentation isdisabled prior to the application enabling callerID, the application candisable callerID presentation after the call to the nVLR is made,placing the user's subscription profile on the network back in itsoriginal callerID-presentation state.

In an illustrative embodiment of the verification phase, the nVLR issuesan outgoing call to the discovered number where the call includes acaller ID chosen out of a range or list of possible caller IDs. Themobile application receives the caller ID from the phone and reports thereceived callerID back to the nVLR. As the user did not know whichcaller ID would be called, reporting the correct callerID back to thenVLR proves that the application had access to the user's phone number.The nVLR compares the received callerID from the application to thecaller ID used to call the discovered number. If the numbers match, thediscovered number is verified. Otherwise, the verification fails. Therange of callerID used to generate the call can be chosen from a spacelarge enough to provide a reasonable assurance against an attack. Forexample, if the caller ID is chosen randomly and uniformly out of aspace of 10,000 possible caller IDs, the probability of an attackersucceeding in verification without receiving the call is at most1/10000. Better security can be achieved if choosing the caller ID froma larger possibility space, or by repeating the process several times.Alternatively, the caller ID can be set to be a randomly generatednumber that does not necessarily represent an actual telephone number.In some embodiments, the nVLR compares only several of the digits of thereceived callerID. In other embodiments, the application may report theresult of a function applied to the caller ID back to the server, andthe server performs a similar function and compares the results. If theresults match, the discovered number is verified, and otherwise,verification fails.

It could be important to make efficient use of the phone numbersassociated with the first gateway interface in the nVLR for the purposeof discovery. Therefore, several registered phones may be allocated thesame phone number to call in the same time period. Therefore, the nVLRwould have a list of several discovered MSISDNs. The nVLR can call theseMSISDNs during the verification process. The nVLR can successfullyverify an MSISDN if the callerID received back from the applicationmatches the callerID used in the outgoing call, and it also identifiesthat the instance of the mobile application that reported the callerIDpossesses the discovered MSISDN. The verification process can be usedtogether with the discovery process described above, or with anotherdiscovery method.

In an alternative illustrative embodiment, a USSD (UnstructuredSupplementary Service Data) message with a pin code can be sent from thenVLR to the discovered phone number. The user can type in the receivedcode back into the mobile application, or the application canautomatically retrieve the pin code from the USSD message. The mobileapplication reports the pin code back to the nVLR, which compares thesent code to the received code, and if they are identical the discoveredphone number is verified. Otherwise, the verification fails, as onlysomeone with access to the registered phone can receive the USSD withthe pin code. A mathematical function can be applied on the pin code bythe mobile application before returning it to the nVLR as well as by thenVLR prior to comparing the values. In an alternative implementation, anSMS message or another message can be used instead of a USSD.

FIG. 4 depicts a discovery and verification system 400 for discoveringand verifying a cellular identity. The system 400 includes a mobiledevice 405 and a server system 410. The mobile device 405 includes dualcapabilities for communicating with a base station 420 in a cellularradio network over a wireless interface 415 and with a wireless accesspoint 430 in a wireless local area network (WLAN) over a wirelessinterface 420. Communications via the base station 420 are routed over acellular network 435 and communications via the wireless access point430 are routed over a packet-switched network 440 (e.g., the Internet).The server system 410 is also connected to and capable of communicatingover both the cellular network 435 and the packet-switched network 440.The server system 410, or certain servers within the server system 410,can communicate over the cellular network using a gateway interface (notshown) internal or external to the server system that enables the serversystem 410 to initiate and receive calls and/or cellular messages. Theserver system 410 includes a web server 445 that allows access to anapplication that can be downloaded by mobile devices (including mobiledevice 405) and/or setting up a user account with the server system 410.The application can also be obtained in other ways. The server system410 includes a discovery server 450 that facilitates discovery of theMSISDN or other cellular identity associated with the mobile device 405.The discovery server 450 can also facilitate discovery of an applicationinstance identifier for an application 470 on the mobile device 405 andcan at least tentatively associate the application instance identifierwith the MSISDN or other cellular identity. The server system 410includes a verification server 455 that facilitates verification of theMSISDN or other cellular identity after it is discovered by thediscovery server 450 or otherwise obtained by the server system. Theverification server 455 can also facilitate verification of theapplication instance identifier for the application 470 on the mobiledevice 405 and/or can verify an association of the application instanceidentifier with the MSISDN or other cellular identity. The server system410 further includes an application server 460 can provide services tothe application 470. The application 470 and application server 460 cancorrespond to the application 125 and application server 130 discussedin connection with FIG. 1 or can be a different application andapplication server. Finally, the server system 410 includes a database465 that stores an association of the application instance identifierwith the MSISDN or other cellular identity.

After the application 470 is installed or otherwise associated with themobile device 405, the application 470 can be used to initiate and/orreceive communications with the server system 410 for purposes ofdiscovering and verifying the MSISDN or other cellular identity and/oran association of the application instance identifier with the MSISDN orother cellular identity as further described below. In general,discovery and verification can be performed in part by detectinginformation (e.g., timing of a sequence of calls placed to the MSISDN ora callerID included in the calls) associated with one or morecommunications directed to and/or received from the MSISDN or othercellular identity. In addition, discovery and verification can beperformed in part based on communications over the packet-switchednetwork 440.

FIG. 5 depicts a block diagram of components on a mobile device 500 thatcan be used in the systems of FIGS. 1 and 4. The mobile device 500includes an operating system 505, a SIM 510 used for maintaining acellular identity, authorizing cellular communications, and accessingservices over a cellular radio access network, a data communication(e.g., WiFi) interface 515, a cellular communication interface 520, andan application 525 that provides a user with access to services separatefrom those accessed over the cellular radio access network. In providingaccess to services, the application 525 interfaces with the operatingsystem 505 to request information and access to other functionssupported by the mobile device 500. For example, the application 525 caninitiate and receive communications over the data communicationinterface 515 and the cellular communication interface 520 and issueinstructions to control one or more user interfaces (e.g., screen orspeaker) or features (e.g., call forwarding) on the mobile device 500.

The application 525 stores an application instance identifier 530 thatuniquely identifies the particular instance of the application on themobile device 500. The application includes a discovery and verificationmodule 535 that can communicate with discovery and verification serversto facilitate discovery and verification of a cellular identity and theapplication instance identifier. The discovery and verification module535 can receive and initiate communications over the data communicationinterface 515 and the cellular communication interface 520 and cancontrol user interfaces and device features. A registration module 540can be used to initiate requests to register with an nVLR to conductcommunications over a packet-switched network. The registration module540 can initiate such requests based on predetermined criteria or inresponse to a user's manual interactions with the application. A VoIPcommunication module 545 is used to establish VoIP communications overthe data communication interface 515. A communication quality module 550can monitor WiFi and/or cellular communication quality to help determinewhen request or terminate registrations with an nVLR. A user interfacemodule 555 is used to enable the application to control (e.g., disable)user interfaces on the mobile device 500 and to display graphical userinterfaces displayed on the mobile device for allowing a user tointeract with functionality and features of the application 525. Theapplication 525 can also include other modules other than those depictedand described.

FIG. 6 is a flow diagram of another process 600 for discovery of amobile identity and an association of the mobile identity with anapplication instance identifier for an application on the mobile device.A request to access a service to be provided for a mobile device isreceived at 605. The request for access can represent a request toestablish an account associated with the service, for example. Therequest can be received from an application on the mobile device and caninclude a request to activate the application for use on the mobiledevice. The request can also include an application instance identifierfor the particular application instance. The request can be initiatedautomatically after installation of the application, during a periodwhen the mobile device is otherwise inactive and/or during low usagehours, or in response to a manual request from a user. A telephonenumber associated with a server adapted for discovery of a mobile deviceidentifier associated with the mobile device requesting access to theservice is provided at 610. The telephone number can be provided as partof an application or in response to a request for the telephone number.Alternatively, a contact which includes the telephone number can bedefined on the mobile device. A user interface display on the mobiledevice is disabled at 615 in advance of automatically for a telephonecall using the telephone number. Alternatively, a splash screen can bedisplayed when placing the telephone call. A telephone call setupmessage is received from the mobile device directed to the telephonenumber at 620. The telephone call setup message includes signaling usedto indicate a call is requested (e.g., to cause the destination phone toring) but does not involve a voice connection until after the call isanswered. The application on the mobile device can cancel the telephonecall setup message after ringing begins or after some predetermined timeor the server can reject the incoming call to ensure that a callconnection is not established. The mobile device identifier isassociated with the request for access to the service in response toreceiving the telephone call setup message from the mobile devicedirected to the telephone number at 625. In addition, the mobile deviceidentifier can be associated with the application instance identifierbased on an inclusion of the application instance identifier in therequest for access to the service. Authorization for access to theservice can be provided based on the discovery of the mobile deviceidentifier and/or its association with the application instanceidentifier or based on a subsequent verification procedure.

FIG. 7 is a flow diagram of another process 700 for discovery of amobile identity and an association of the mobile identity with anapplication instance identifier for an application on the mobile device.According to the process 700, the application is preconfigured with atelephone number for the application to call. The process 700 can becarried out by a mobile device and a server system. The application isinstalled on the mobile device at 705 (e.g., by downloading theapplication from a server). Registration of the application on thedevice is initiated at 710. A predetermined telephone number stored onin the application and associated with a verification server is accessedat 715. In some cases, a user interface display on the mobile device isdisabled or a splash screen or other information is presented on thedisplay at 720 to conceal an automatic call. If necessary, a caller IDblocking feature is disabled at 725. A telephone call setup message isinitiated from the mobile device directed to the telephone number at730. The telephone number can be associated with a discovery server foruse in discovery an identifier for the mobile device. A telephone callrequested in the telephone call setup message is terminated before avoice connection is established at 735. Based on the telephone callsetup message, the caller ID of the mobile device is detected at 740(e.g., by the discovery server). The caller ID can reveal (or allowretrieval from an HLR or other database) the MSISDN, IMSI, and/or othermobile device identifier for the mobile device. The mobile deviceidentifier is associated with the application at 745 in response toreceiving the telephone call setup message from the mobile devicedirected to the telephone number (i.e., the server knows that the mobiledevice with the mobile device identifier has the application installedbut does not know the identifier for the particular applicationinstance). A message (e.g., a USSD or SMS message) including a code(e.g., a pin code) is sent to the mobile device using the mobile deviceidentifier at 750. A communication from the mobile device including thecode and including the application instance identifier for theapplication is sent by the application on the mobile device at 755(e.g., to the discovery server). The communication is associated withthe telephone call setup message based on the code and the applicationinstance identifier included in the communication is associated with themobile device identifier identified based on the telephone call setupmessage at 760. As an alternative to a USSD or SMS, another verificationflow can be used, such as the one described in process 900 below.

FIG. 8 is a flow diagram of another process 800 for discovery of amobile identity and an association of the mobile identity with anapplication instance identifier for an application on the mobile device.According to the process 800, the application requests the telephonenumber for use in initiating a call from a server. The application isinstalled on the mobile device at 805. Registration of the applicationon the device is initiated at 810. A request is received for a telephonenumber associated with a discovery server at 815. The request caninclude the application instance identifier for the application. Atelephone number for the server is associated with the applicationinstance identifier at 820, and the telephone number is provided by theserver to the application in response to the request at 825. The process800 continues in a similar manner to process 700 with actions defined at720-745 except that the mobile device identifier can be associated withthe application instance identifier based on the known associationbetween the telephone number for the server and the application instanceidentifier and the receipt of a call at the server telephone number fromthe caller ID of the mobile device. The actions of 750 to 760 can berepeated in process 800 instead of sending the application instanceidentifier at 815. Alternatively, these actions can be repeated toverify the association between the mobile device identifier and theapplication instance identifier.

FIG. 9 is a flow diagram of a process 900 for verification of a mobileidentity and an association of the mobile identity with an applicationinstance identifier for an application on the mobile device. A requestto verify an application, having an associated application instanceidentifier, installed on a mobile device is received at 905. The requestto verify can be automatically initiated after discovery of the mobileidentity or at some other appropriate time or in response to a userrequest to activate the application or initiate the verification. Amobile device identifier used to communicate with the mobile device isobtained at 910 using one of the discovery techniques described above orsome alternative technique. The application instance identifierassociated with the application is sent to a server system at 915. Theapplication instance identifier can be sent in a request from theapplication to initiate the verification procedure, in a response to amessage from the server that verification is ready to begin, or in someother communication. A user notification feature (e.g., ringing,vibration, and screen display) of incoming telephone calls istemporarily disabled on the mobile device at 920. The application candisable the user notification feature through the mobile deviceoperating system. In some implementations, the application can notifythe verification server that the user notification feature has beendisabled and thus that the application is ready to receive incoming callsetup messages for verification purposes. The user notification featurecan be re-enabled after the verification procedure is complete. Forexample, the server can inform the application that the procedure iscomplete. In some implementations, the application can display a splashscreen during the verification process so that the user is informed thatthe mobile device is temporarily unavailable and/or to prevent the userfrom interfering with the process.

One or more telephone call setup messages directed to the mobile deviceusing the mobile device identifier are initiated (e.g., by theverification server) at 925. The one or more telephone call setupmessages are initiated by a server for use in verifying an associationof the application instance identifier with the mobile deviceidentifier. These telephone call setup messages can be terminated beforea voice connection is established. In some implementations, theapplication on the mobile device detects a sequence of telephone callsetup messages (e.g., timing and receipt) at 930 and reports thesequence of the telephone call setup messages to a server (e.g., over adata network) at 935. The application instance identifier is thenassociated with the mobile device identifier based on the reportedsequence of the telephone call setup messages at 940. In particular, ifthe reported sequence matches the actual sequence, the verificationserver can confirm that the mobile device has authorization to use theMSISDN or IMSI. As an alternative to using a selected sequence oftelephone call setup messages, at least one of the telephone call setupmessages includes a selected identifier determined by a server for usein verifying an association of the application instance identifier withthe mobile device identifier. In some implementations, the selectedidentifier is included in the telephone call setup message as a callerID header. The application on the mobile device detects the selectedidentifier at 945 and reports the selected identifier to theverification server (e.g., over a data network) at 950. The applicationinstance identifier is then associated with the mobile device identifierbased on the reported selected identifier(s) including in the telephonecall setup messages at 955. In particular, if the reported identifiermatches the actual selected identifier, the verification server canconfirm that the mobile device has authorization to use the MSISDN orIMSI. Furthermore, by including the application instance identifier inone or more of the reports to the verification server during theverification process, the verification server can further verify thatthe application instance identifier is associated with the mobile deviceidentifier. Once the verification is complete, a service provided to orusing the application is authorized for use by the mobile device at 960.Thereafter, the application on the mobile device can send theapplication instance identifier so that the application server canconfirm that the service is authorized for the mobile device. In someimplementations, instead of sending the actual application instanceidentifier, the application instance identifier can serve as a key thatis processed through an algorithm (e.g., in response to a challengemessage) and the result of the processing can be sent so that theapplication instance identifier is not compromised. Alternatively, theapplication instance identifier can be encrypted for any communications.Similarly, the detected selected identifier can be processed by themobile application using a mathematical function prior to sending to aserver.

FIG. 10 is a flow diagram of an alternative process 1000 forverification of a mobile identity and an association of the mobileidentity with an application instance identifier for an application onthe mobile device. The alternative process 1000 involves forwardingcalls directed to the mobile station identifier to a telephone numberassociated with the server system. A request to verify an application,having an associated application instance identifier, installed on amobile device is received at 1005. The request to verify can beautomatically initiated after discovery of the mobile identity or atsome other appropriate time or in response to a user request to activatethe application or initiate the verification. A mobile device identifierused to communicate with the mobile device is obtained at 1010 using oneof the discovery techniques described above or some alternativetechnique. The application instance identifier associated with theapplication is sent to a server system at 1015. The application instanceidentifier can be sent in a request from the application to initiate theverification procedure, in a response to a message from the server thatverification is ready to begin, or in some other communication. In someimplementations, a user notification feature (e.g., ringing, vibration,and screen display) of incoming telephone calls is temporarily disabledon the mobile device at 1020. However, because the process 1000 involvesforwarding calls directed to the mobile device, it may not be necessaryto disable the user notification unless the type of call forwardingactivated allows the incoming call to be directed to the mobile devicein addition to a forwarding number. The application can disable the usernotification feature through the mobile device operating system. In someimplementations, the application can notify the verification server thatthe user notification feature has been disabled and thus that theapplication is ready to receive incoming call setup messages forverification purposes. The user notification feature can be re-enabledafter the verification procedure is complete. For example, the servercan inform the application that the procedure is complete. In someimplementations, the application can display a splash screen during theverification process so that the user is informed that the mobile deviceis temporarily unavailable and/or to prevent the user from interferingwith the process.

Call forwarding to a selected destination is activated at 1025. Theselected destination can be identified by the verification server andcommunicated to the application on the mobile device, for example.Typically, the call forwarding is initiated by the mobile device, e.g.,by the application on the mobile device. In some implementations,however, call forwarding may be initiated by a server using the mobiledevice identifier. The application on the mobile device communicateswith the server system to initiate one or more telephone call setupmessages directed to the mobile device identifier at 1030. For example,the application can notify the server system when call forwarding is inplace. One or more telephone call setup messages directed to the mobiledevice using the mobile device identifier are initiated (e.g., by theverification server) at 1035. The one or more telephone call setupmessages are initiated by a server for use in verifying an associationof the application instance identifier with the mobile deviceidentifier. An association of the application instance identifier withthe mobile device identifier is verified based on receiving forwardedcall setup messages at the selected destination at 1040. For example,the mere receipt of forwarded call setup messages or detecting that thecaller IDs of the forwarded call setup messages as received at theselected destination match the expected caller IDs can be used to verifythat the mobile device possesses the MSISDN. Call forwarding is disabledby the application, the mobile device, or the server system at 1045 oncethe verification is complete.

Implementations of the subject matter and the functional operationsdescribed in this specification can be implemented in digital electroniccircuitry, or in computer software, firmware, or hardware, including thestructures disclosed in this specification and their structuralequivalents, or in combinations of one or more of them. Implementationsof the subject matter described in this specification can be implementedas one or more computer program products, i.e., one or more modules ofcomputer program instructions tangibly stored on a computer-readablestorage device for execution by, or to control the operation of, dataprocessing apparatus. In addition, the one or more computer programproducts can be tangibly encoded in a propagated signal, which is anartificially generated signal, e.g., a machine-generated electrical,optical, or electromagnetic signal, that is generated to encodeinformation for transmission to suitable receiver apparatus forexecution by a computer. The computer-readable storage device can be amachine-readable storage device, a machine-readable storage substrate, amemory device, or a combination of one or more of them.

The term “data processing apparatus” encompasses all apparatus, devices,and machines for processing data, including by way of example aprogrammable processor, a computer, or multiple processors or computers.The apparatus can include, in addition to hardware, code that creates anexecution environment for the computer program in question, e.g., codethat constitutes processor firmware, a protocol stack, a databasemanagement system, an operating system, a cross-platform runtimeenvironment, or a combination of one or more of them. In addition, theapparatus can employ various different computing model infrastructures,such as web services, distributed computing and grid computinginfrastructures.

A computer program (also known as a program, software, softwareapplication, script, or code) can be written in any form of programminglanguage, including compiled or interpreted languages, declarative orprocedural languages, and it can be deployed in any form, including as astand-alone program or as a module, component, subroutine, or other unitsuitable for use in a computing environment. A computer program does notnecessarily correspond to a file in a file system. A program can bestored in a portion of a file that holds other programs or data (e.g.,one or more scripts stored in a markup language document), in a singlefile dedicated to the program in question, or in multiple coordinatedfiles (e.g., files that store one or more modules, sub-programs, orportions of code). A computer program can be deployed to be executed onone computer or on multiple computers that are located at one site ordistributed across multiple sites and interconnected by a communicationnetwork.

The processes and logic flows described in this specification can beperformed by one or more programmable processors executing one or morecomputer programs to perform functions by operating on input data andgenerating output. The processes and logic flows can also be performedby, and apparatus can also be implemented as, special purpose logiccircuitry, e.g., an FPGA (field programmable gate array) or an ASIC(application-specific integrated circuit).

Processors suitable for the execution of a computer program include, byway of example, both general and special purpose microprocessors, andany one or more processors of any kind of digital computer. Generally, aprocessor will receive instructions and data from a read-only memory ora random access memory or both. The essential elements of a computer area processor for performing instructions and one or more memory devicesfor storing instructions and data. Generally, a computer will alsoinclude, or be operatively coupled to receive data from or transfer datato, or both, one or more mass storage devices for storing data, e.g.,magnetic, magneto-optical disks, or optical disks. However, a computerneed not have such devices. Moreover, a computer can be embedded inanother device, e.g., a mobile telephone, mobile device, a personaldigital assistant (PDA), a mobile audio or video player, a game console,a Global Positioning System (GPS) receiver, or a portable storage device(e.g., a universal serial bus (USB) flash drive), to name just a few.Devices suitable for storing computer program instructions and datainclude all forms of non-volatile memory, media and memory devices,including by way of example semiconductor memory devices, e.g., EPROM,EEPROM, and flash memory devices; magnetic disks, e.g., internal harddisks or removable disks; magneto-optical disks; and CD-ROM and DVD-ROMdisks. The processor and the memory can be supplemented by, orincorporated in, special purpose logic circuitry.

To provide for interaction with a user, implementations of the subjectmatter described in this specification can be implemented on a computerhaving a display device, e.g., a CRT (cathode ray tube) or LCD (liquidcrystal display) monitor, for displaying information to the user and akeyboard and a pointing device, e.g., a mouse or a trackball, by whichthe user can provide input to the computer. Other kinds of devices canbe used to provide for interaction with a user as well; for example,feedback provided to the user can be any form of sensory feedback, e.g.,visual feedback, auditory feedback, or tactile feedback; and input fromthe user can be received in any form, including acoustic, speech, ortactile input.

Implementations of the subject matter described in this specificationcan be implemented in a computing system that includes a back-endcomponent, e.g., as a data server, or that includes a middlewarecomponent, e.g., an application server, or that includes a front-endcomponent, e.g., a client computer having a graphical user interface ora Web browser through which a user can interact with an implementationof the subject matter described is this specification, or anycombination of one or more such back-end, middleware, or front-endcomponents. The components of the system can be interconnected by anyform or medium of digital data communication, e.g., a communicationnetwork. Examples of communication networks include a local area network(“LAN”) and a wide area network (“WAN”), an inter-network (e.g., theInternet), and peer-to-peer networks (e.g., ad hoc peer-to-peernetworks).

The computing system can include clients and servers. A client andserver are generally remote from each other and typically interactthrough a communication network. The relationship of client and serverarises by virtue of computer programs running on the respectivecomputers and having a client-server relationship to each other.

While this specification contains many implementation details, theseshould not be construed as limitations on the scope of the invention orof what may be claimed, but rather as descriptions of features specificto particular implementations of the invention. Certain features thatare described in this specification in the context of separateembodiments can also be implemented in combination in a singleembodiment. Conversely, various features that are described in thecontext of a single embodiment can also be implemented in multipleembodiments separately or in any suitable subcombination. Moreover,although features may be described above as acting in certaincombinations and even initially claimed as such, one or more featuresfrom a claimed combination can in some cases be excised from thecombination, and the claimed combination may be directed to asubcombination or variation of a subcombination.

Similarly, while operations are depicted in the drawings in a particularorder, this should not be understood as requiring that such operationsbe performed in the particular order shown or in sequential order, orthat all illustrated operations be performed, to achieve desirableresults. In certain circumstances, multitasking and parallel processingmay be advantageous. Moreover, the separation of various systemcomponents in the implementations described above should not beunderstood as requiring such separation in all implementations, and itshould be understood that the described program components and systemscan generally be integrated together in a single software product orpackaged into multiple software products.

Thus, particular implementations of the invention have been described.Other implementations are within the scope of the following claims. Insome cases, the actions recited in the claims can be performed in adifferent order and still achieve desirable results. In addition, theprocesses depicted in the accompanying figures do not necessarilyrequire the particular order shown, or sequential order, to achievedesirable results. In certain implementations, multitasking and parallelprocessing may be advantageous.

I/we claim:
 1. A computer-implemented method for verifying anassociation between a mobile computing device and an application, themethod comprising: transmitting, by a mobile computing device, a requestto a service to verify an application on the mobile computing device,wherein the application has an associated application instanceidentifier; conveying to the service a mobile device identifier that isused to establish a communication channel with the mobile computingdevice; receiving, by the mobile computing device, one or more telephonecall setup messages directed to the mobile computing device using themobile device identifier, the one or more telephone call setup messagessignalling a voice call request, wherein the one or more telephone callsetup messages are initiated by the service for use in verifying anassociation of the application instance identifier with the mobiledevice identifier; and providing an indication to the service of thereceipt of the one or more telephone call setup messages, the serviceestablishing an association between the application instance identifierand the mobile device identifier in response to receiving theindication.
 2. The method of claim 1, wherein the mobile deviceidentifier is conveyed by a telephone call setup message from the mobilecomputing device to the service, the telephone call setup messageincluding signalling to cause a destination to ring but not to establisha voice connection.
 3. The method of claim 2, wherein conveying a mobiledevice identifier further comprises disabling a caller ID blockingfeature.
 4. The method of claim 2, wherein conveying a mobile deviceidentifer further comprises canceling the telephone call setup messageafter the destination rings or after a predetermined time.
 5. The methodof claim 1, wherein the mobile device identifier comprises aninternational mobile subscriber identity (IMSI) number or a mobilesubscriber integrated services digital network (MSISDN) number.
 6. Themethod of claim 1, further comprising: disabling, at the mobilecomputing device, prior to receiving the one or more telephone callsetup messages, a user notification feature of the mobile computingdevice; and transmitting a notification to the service that the mobilecomputing device is ready to receive the one or more telephone callsetup messages.
 7. The method of claim 6, further comprising receiving,by the mobile computing device, an indication that the user notificationfeature of the mobile computing device can be re-enabled.
 8. The methodof claim 1, wherein at least one of the received telephone call setupmessages includes a selected identifier determined by the service, themethod further comprising transmitting a transmitted identifier based onthe selected identifier, the service using the transmitted identifier toverify the association between the application instance identifier andthe mobile device identifier.
 9. The method of claim 8, wherein theselected identifier is included in at least one received telephone callsetup message as a caller ID header.
 10. A computer-readable storagemedium encoded with instructions that, when executed by a dataprocessing apparatus, cause the data processing apparatus to performoperations comprising: transmitting a request to a service to verify anapplication on a mobile computing device, wherein the application has anassociated application instance identifier; conveying to the service amobile device identifier that is used to establish a communicationchannel with the mobile computing device; receiving one or moretelephone call setup messages directed to the mobile computing deviceusing the mobile device identifier, the one or more telephone call setupmessages signalling a voice call request, wherein the one or moretelephone call setup messages are initiated by the service for use inverifying an association of the application instance identifier with themobile device identifier; and providing an indication to the service ofthe receipt of the one or more telephone call setup messages, theservice establishing an association between the application instanceidentifier and the mobile device identifier in response to receiving theindication.
 11. The computer-readable storage medium of claim 10,wherein the mobile device identifier is conveyed by a telephone callsetup message from the mobile computing device to the service, thetelephone call setup message including signalling to cause a destinationto ring but not to establish a voice connection.
 12. Thecomputer-readable storage medium of claim 11, wherein conveying a mobiledevice identifier further comprises disabling a caller ID blockingfeature.
 13. The computer-readable storage medium of claim 11, whereinconveying a mobile device identifier further comprises canceling thetelephone call setup message after the distination rings or after apredetermined time.
 14. The computer-readable storage medium of claim10, wherein the mobile device identifier comprises an internationalmobile subscriber identity (IMSI) number or a mobile subscriberintegrated services digitial network (MSISDN) number.
 15. Thecomputer-readable storage medium of claim 10, the operations furthercomprising: disabling, prior to receiving the one or more telephone callsetup messages, a user notification feature of the mobile computingdevice; and transmitting a notification to the service that the mobilecomputing device is ready to receive the one or more telephone callsetup messages.
 16. The computer-readable storage medium of claim 15,the operations further comprising receiving an indication that the usernotification feature of the mobile computing device can be re-enabled.17. The computer-readable storage medium of claim 10, wherein at leastone of the received telephone call setup messages includes a selectedidentifier determined by the service, the operations further comprisingtransmitting a transmitted identifier based on the selected identifier,the service using the transmitted identifer to verify the associationbetween the application instance identifier and the mobile deviceidentifier.
 18. The computer-readable storage medium of claim 17,wherein the selected identifier is included in at least one receivedtelephone call setup message as a caller ID header.